[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote code execution vulnerability in Microsoft malware protection engine - CVE-2017-8538

ID: oval:org.secpod.oval:def:40663Date: (C)2017-05-31   (M)2024-03-26
Class: VULNERABILITYFamily: windows




The host is installed with Microsoft malware protection engine before 1.1.13804.0 for Microsoft Forefront Security for SharePoint, Windows Defender or Microsoft Security Essentials and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation allows attackers to execute arbitrary code in the security context of the LocalSystem account and take control of the system.

Platform:
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Product:
Microsoft Windows Defender
Microsoft Security Essentials
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Reference:
CVE-2017-8538
CVE    1
CVE-2017-8538
CPE    7
cpe:/a:microsoft:exchange_server:2013:sp1
cpe:/a:microsoft:windows_defender:-
cpe:/a:microsoft:exchange_server:2013
cpe:/a:microsoft:exchange_server:2016:cu3
...

© SecPod Technologies